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Real Party in Interest 

The real party in interest, by assignment, is: Telefonaktiebolaget LM Ericsson (publ) 

SE-164 83 
Stockholm, Sweden 

Related Appeals and Interferences 

A prior appeal was filed on September 30, 2009, to appeal the decision of the 
Primary Examiner set forth in a Final Office Action dated March 31, 2009, finally 
rejecting claims 13-22, and an Advisory Action issued on June 30, 2009, maintaining 
the claim rejections set out in that Final Office Action. Rather than answer that appeal, 
the Examiner re-opened prosecution and issued a new basis of rejection in an office 
action dated January 12, 2010; the Applicants now appeal the new basis of rejection. A 
copy of the prior Appeal Brief is submitted herewith in the Related Proceedings 
Appendix so that the Board can be apprised of the merits, vel non, of the Examiner's 
prior claim rejections. 



Status of Claims 

Claims 1-12 were previously cancelled and are not appealed. Claims 13-22 
remain pending, each of which are rejected and form the basis for this Appeal. 

Status of Amendments 

The claims set out in the Claims Appendix include all entered amendments. 



Summary of Claimed Subject Matter 



Claim Element 


Specification Reference 


13. A method for preventing illegitmate use 
of an Internet Protocol (IP) address by a 
subscriber device in an IP network, the network 
including a switch node and at least one DHCP 
server, said subscriber device in communication 
with the switch node, the method including the 
steps of: 


Page 5, line 33, et seq. 


creating a list of trusted ones of the 
DHCP servers in said switch node; 


Page 6, line 3, et seq. 


transmitting by the subscriber device a 


Page 6, line 9, etseq. 
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DHCP request message for an IP address; 




receiving a reply message by said switch 
node which carries an assigned subscriber IP 
address; 


Page 6, line 11, etseq. 


analysing the reply message by said 
switch node to be a DHCP message and having 
a source address from one of the tmsted DHCP 
servers: 


Page 6. line 15, etseq. 


updating a filter dynamically in the switch 
node, the filter storing an identification of the 
subscriber device and the assigned subscriber 
IP address; 


Page 6, line 21 , et seq. 


transmitting a frame from the subscriber 
device using a source IP address; 


Page 6, line 26, etseq. 


comparing in the filter said source IP 
address with the stored subscriber IP address; 
and, 


Page 6, line 27, et seq. 


discarding said frame when said source 
IP address differs from the stored subscriber IP 
address. 


Page 6. line 31, etseq. 




Claim Element 


Specification Reference 


18. A switch node in an Internet Protocol 
(IP) networi< adapted to prevent illegitmate use 
of an IP address by a subscriber device, the 
switch node including: 


Page 5, line 5, etseq. 
Page 5, line 33, et seq. 


at least one port for communication with 
a subscriber device; 


Page 5, line 7, etseq. 


an uplink port for communication with 
DHCP servers in the network; and, 


Page 5, line 5 


a filter device having a list of tmsted ones 
of the DHCP servers, the filter device being 
associated with the ports; wherein the switch 
node is operative to: 


Page 6, line 3, etseq. 


receive a subscriber IP address request 
message from a subscriber device, analyse it to 
be a DHCP request message and transmit it on 
the uplink port; 


Page 6, line 9. etseq. 


receive a reply message on the uplink 
port, analyse it to be a DHCP reply message 
having a source IP address from one of the 
trusted DHCP servers on the list; 


Page 6, line ^^,et seq. 
Page 6, line 15, etseq. 


dynamically update the filter with an 
Identification of the subscriber device and a 
corresponding assigned subscriber IP address 


Pages, line 21, etseq. 
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contained in the DHCP reply message- 
receive a frame with a source IP address 
from a subscriber device; 


Page 6, line 26, et seq. 


compare in the filter said source IP 
address with the stored subscriber IP address 
for the subscriber device; and. 


Page 6, line 27, et seq. 


to discard said frame when said source 
IP address differs from the stored subscriber IP 
address. 


Page 6. line 31, etseq. 



The specification references listed above are provided solely to comply with the 
USPTO's current regulations regarding appeal briefs. The use of such references 
should not be interpreted to limit the scope of the claims to such references, nor to limit 
the scope of the claimed invention in any manner. 



Grounds of Reje ction to be Reviewed on Appeal 

1. ) Whether claims 13-16 and 18-21 are unpatentable, under 35 U.S.C. §1 03(a), 

over Massarani, et al. (U.S. Patent No. 6,393,484) In view of Larson, et al. (U.S. 
Patent Publication No. 2004/0107286). 

2. ) Whether claims 17 and 22 are unpatentable, under 35 U.S.C. §103(a), over 

Massarani, et al. (U.S. Patent No. 6.393,484) in view of Larson, et al. (U.S. 
Patent Publication No. 2004/0107286) and Taylor, etal. (U.S. 2002/0065919). 



Arguments 



Claims 13-16 and 18-21 are patentable, under 35 U.S.C. 6103(a) over 
Massarani, et al. (U.S. Patent No. 6,393,484) in view of Larson, et al lU S 
Patent Publication No. 2004/0107286) ' 



Claim 1 3 recites: 



1 3. A method for preventing illegitmate use of an Internet Protocol 
(IP) address by a subscriber device in an IP network, the network 
Including a switch node and at least one DHCP server, said 
subscriber device In communication with the switch node, the method 
including the steps of: 

creating a list of tmsted ones of the DHCP sen/ers in said 
switch node; 

transmitting by the subscriber device a DHCP request 
message for an IP address; 
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receiving a reply message by said switch node which carries 
an assigned subscriber IP address; 

analysing the reply message by said switch node to be a 
DHCP message and having a source address from one of the trusted 
DHCP servers; 

updating a filter dynamically in the switch node, the filter 
storing an identification of the subscriber device and the assigned 
subscriber IP address; 

transmitting a frame from the subscriber device using a source 
IP address; 

comparing in the filter said source IP address with the stored 
subscriber IP address; and, 

discarding said frame when said source IP address differs 
from the stored subscriber IP address. 

The Applicants' invention is directed to preventing the illegitmate use of an Internet 
Protocol (IP) address in an IP network, commonly referred to as "spoofing." The novel 
method includes providing a filter in a switch node through which a subscriber device 
accesses the IP network. The switch node maintains a list of trusted DHCP servers which 
are conventionally used to assign an IP address to subscriber devices. When the switch 
node receives a DHCP request for an IP address from a subscriber device, the switch 
node examines the reply message that camies the assigned subscriber IP address and 
analyzes it to confirm It has a source address from one of the trusted DHCP servers. The 
switch node then dynamically updates the filter and stores an indentifcatlon of the 
subscriber device and the assigned IP address. Subsequently, when the subscriber device 
transmits a frame using a source IP address, the switch node confirms in the filter that the 
source IP address of the frame matches the stored subscriber IP address and. if not. the 
switch node discards the frame. That combination of functions Is not tauoht or 
suggested by the teachings of Massara ni and Larson, either individually or in 
combination. 

As can be seen In the prior Appeal Brief submitted herewith in the Related 
Proceedings Appendix, the Examiner previously rejected claim 13 as being unpatentable 
over Sitaraman. etal. (U.S. Patent No. 6.427.170) in view of Alkhatib. etaL (U.S. Patent 
Publication No. 2004/0044778) and Lim. et al. (U.S. Patent No. 5884024). Despite 
having twice rejected the pending claims in view of those references, as well as issuing 
an Advisory Action maintaining the propriety of that basis of rejection, the Examiner no 
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longer relies on the teachings of any of those references, but now looks to the teachings 
of Massarani and Larson. Massarani and Larson fail to cure the deficiencies in the 
teachings of Sitaraman, Alkhatib and Lim. 

First, the Examiner acknowledges that "Massarani fails to explicitly teach creating a 
trusted ones of the DHCP sprvpr«" (Office Action dated January 12. 2010, 
hereinafer "OA"; page 5. lines 9-10; emphasis added) Despite the fact that Massarani fails 
to teach a list of trusted DHCP servers in a switch node, as recited in claim 13, the 
Examiner asserts that Massarani teachse the claim limitation of "analysing the reply 
message by said switch node to be a DHCP message and having a source address from 
oneoMhe trusted DHCP senders." (OA; page 4. line 3. et seq.; emphasis added) The 
Examiner reads too much into the teachings of Massarani. 

The teachings of Massarani Include the description of techniques to control access 
to an Internet Protocol (IP) network. As noted by the Examiner with respect to Figure 4, an 
IP address is assigned to an end user device if a MAC address in a request for an IP 
address from an end user device corresponds to a MAC address previously registered in 
the DHCP server that receives the request for an IP address. (See column 6, lines 40-53) 
The prior registration of the end user device MAC address in the DHCP server is 
accomplished according to Figure 2 and the description relating thereto at column 6, lines 
1-10. Thus, the teachings of Massarani are limited to the storing of previously-registered 
end user device MAC addresses in a DHCP server, and assigning an IP address to such 
end-user device when requested only if a MAC address in such request matches a 
previously-registered MAC address. In other words, the DHCP checks whether a request 
for an IP address is from an unauthorized end user devicff if so. an IP address Is not 
issued and service is refused (Figure 4; Steps 410, 412). In contrast, the Applicant's 
invention is directed to solving a problem related to an end user device ("subscriber 
device") obtaining an IP address from an unauthorized DHCP server (Specification; page 
5, line 24, etseq.) 

To thwart the possibility of a subscriber device obtaining an IP address from an 
unauthorized DHCP server, a list of trusted DHCP sen/ers Is maintained in a switch node 
through which such device would request an IP address, and through which a reply to 
such request would be received. Upon receiving the reply message in the switch node, a 
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source address of the DHCP server contained therein Is compared against a list of trusted 
DHCP servers. If there Is a comparison, a filter In the switch node stores an identification 
of the subscriber device and the assigned subscriber IP address; subsequently, frames 
received In the switch node from the subscriber device are discarded if they have a source 
IP address that doesn't match the stored IP address. Thus, the Invention comprises, In 
part, a switch node that stores the identity of a subscriber device and an assigned IP 
address jf the assigned IP address comes from a DHCP on a imsted list of DHC.p 
servers in the switch node , thus preventing the use of an IP address by the subscriber 
device that may have been obtained from an unauthorized DHCP sen/er. Massarani fails 
to disclose that functionality. 

Again, as the Examiner has acknowledged, "Massarani fails to explicitly teach 
creating a list of trusted ones of the DHCPservPr^" To overcome that deficiency, the 
Examiner looks to the teachings of Larson, stating that it leaches a secure mechanism for 
communicating over the internet employs [sic] a number of special routers or servers. 
(Larson et al.. Paragraph 70). in order to protect U\Ns from unauthorized access and 
hostile exploitation or damage to computers connected to the LAN, (Larson et al. 
Paragraph 8)." (OA; page 5, line 11, seq.) Whatever Larson teaches, it fails to teach 
anything having to do with a DHCP server, much less preventing the use of an IP address 
by a subscriber device that may have been obtained from an unauthorized DHCP server. 
This has been confirmed by an electronic search of that reference for "DHCP." which 
doesn't appear anywhere in that reference. Thus, it is not possible that Larson overcomes 
the acknowledged deficiency in the teachings of Massarani and. therefore, the Examiner 
has not established a prima facie cas e of obviousness for claim 13 in view of thoso 
references . 

Whereas independent claim 18 recites limitations analogous to those of claim 13. it 
is also not obvious over Massarani In view of Larson. Furthemiore, whereas claims 14-16 
and 19-21 are dependent from claims 13 and 18. respectively, and include the limitations 
thereof, they are also not obvious in view of those references. 
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2.) Whether claims 17 and 22 are patentable, under 35 U.S.C. 6103(a) over 
p!^nJoV ^^J- N*^- ^'^^^'^S^) in view of Larson. Bt all (U I 

Patent Publication No. 2004/0107286) and Taylor, etal. (U.S. 2002/0065919) 

As established supra, the Examiner has not established a prima facie case of 
obviousness of claims 13 and 18 in view of Massarani and Larson. Therefore, whereas 
claims 17 and 22 are dependent from those claims, and include the limitations thereof, 
they are not obvious over Massarani, Larson and Taylor. 
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CONCLUSION 



the foregoing reasons, claims 13-22 are patentable over the teachings of 
Larson and Taylor and, therefore, the Applicants request that the 
rejections thereof be reversed and the application be remanded for further 



Date: June 14.2010 
Ericsson Inc. 

6300 Legacy Drive, M/S EVR1 0-1 1 
Piano, Texas 75024 

(972) 583-5799 
roger.burleigh@ericsson.com 



prosecution. 




Respectfully^bmitted, 



Roq€t S. Burleigh 
Registration No. 40,542 
Ericsson Patent Counsel 
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1-12. (Cancelled) 



CLAIMS APPgMDiy 



13. (Previously Presented) A method for preventing illegltmate use of an 

Internet Protocol (IP) address by a subscriber device In an IP network, the network 
including a switch node and at least one DHCP server, said subscriber device In 
communication with the switch node, the method including the steps of: 

creating a list of trusted ones of the DHCP servers in said switch node; 

transmitting by the subscriber device a DHCP request message for an IP address; 

receiving a reply message by said switch node which carries an assigned subscriber 
IP address; 

analysing the reply message by said switch node to be a DHCP message and 
having a source address from one of the trusted DHCP servers; 

updating a filter dynamically in the switch node, the filter storing an Identification of 
the subscriber device and the assigned subscriber IP address; 

transmitting a frame from the subscriber device using a source IP address; 

comparing in the filter said source IP address with the stored subscriber IP address; 

and, 

discarding said frame when said source IP address differs from the stored subscriber 
IP address. 

14. (Previously Presented) The method according to claim 13. further 
comprising the step of storing In the filter a subscriber MAC address, a subscriber 
physical port number, a subscriber virtual LAN Identity and a lease time interval for the 
assigned subscriber IP address. 

1 5. (Previously Presented) The method according to claim 1 3. wherein the 
subscriber IP address is statically assigned and handled by the DHCP servers. 
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16. (Previously Presented) The method according to claim 14. the method 
including deleting the subscriber identification and the corresponding assigned 
subscriber IP address from the filter when the lease time interval is out. 

1 7. (Previously Presented) The method according to claim 13. the method 
further comprising the steps of: 

counting a number of attempts (n) from the subscriber to use an illegitimate IP 
address; 

comparing the number (n) of the attempts with a threshold number (N); 

sending a waming signal when the number of attempts exceeds a threshold criteria. 

18. (Previously Presented) A switch node in an Intemet Protocol (IP) 
network adapted to prevent illegitmate use of an IP address by a subscriber device, the 
switch node including: 

at least one port for communication with a subscriber device; 

an uplink port for communication with DHCP servers in the network; and. 

a filter device having a list of trusted ones of the DHCP servers, the filter device 
being associated with the ports; wherein the switch node is operative to: 

receive a subscriber IP address request message from a subscriber device, analyse 
it to be a DHCP request message and transmit it on the uplink port; 

receive a reply message on the uplink port, analyse it to be a DHCP reply message 
having a source IP address from one of the trusted DHCP servers on the list; 

dynamically update the filter with an identification of the subscriber device and a 
corresponding assigned subscriber IP address contained in the DHCP reply message; 

receive a frame with a source IP address from a subscriber device; 

compare in the filter said source IP address with the stored subscriber IP address for 
the subscriber device; and, 

to discard said frame when said source IP address differs from the stored subscriber 
IP address. 
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19. (Previously Presented) The switch node according to claim 18. 
wherein the switch node is further operative to store in the filter a subscriber MAC 
address, a subscriber physical port number, a subscriber virtual LAN identity and a 
lease time interval for the assigned subscriber IP address. 

20. (Previously Presented) The switch node according to claim 18. wherein 
the subscriber IP address comprises a statically assigned address which is handled by the 
DHCP servers. 



21 . (Previously Presented) The switch node according to claim 19, wherein 

the switch node is further operative to delete the subscriber identification and the 
corresponding assigned subscriber IP address from the filter when the lease time inteival 
expires. 



22. (Previously Presented) The switch node according to claim 18. wherein 

the filter comprises a counter operative to count a number (n) of discarded frames on the 
subscriber port, to compare the number (n) of the discarded frames with a threshold 
number (N). and to send a warning signal when the number of discarded frames exceeds 
a threshold criterion. 
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EVIDENCE APPENDIX 

None. 
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RELATED PROCEEDINGS APPFMniY 

This Appendix presents a copy of the prior Appeal Brief (without Appendices), 
submitted on September 30, 2009. 
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Related Ap peals and Interferences 
None. 
Status of Claims 

Claims 1-12 were previously cancelled and are not appealed. Claims 13-22 are 
pending in the present application, each of which are finally rejected and form the basis 
for this Appeal. Claims 13-16 and 18-21. stand rejected, under 35 U.S.C. §103(a). as 
being unpatentable over Sitaraman. et al. (U.S. Patent No. 6.427,170) in view of 
Alkhatib. etal. (U.S. Patent Publication No. 2004/0044778) and Lim, etal. (U.S. Patent 
No. 5884024): and claims 17 and 22 as being unpatentable over Sitaraman in view of 
Alkhatib and Taylor, et al. (U.S. Patent Publication No. 2002/0065919). Claims 13-22, 
including all amendments to the claims, are attached in the Claims Appendix. The 
rejection of claims 13-22 is appealed. 



Status of Amendments 
The claims set out In the Claims Appendix include all entered amendments. No 
amendment has been filed subsequent to the final rejection. 



Summary of Claimed Subject Matter 



Claim Element 


Specification Reference 


13. A method for preventing illegitmate use 
of an Internet Protocol (IP) address by a 
subscriber device in an IP network, the network 
including a switch node and at least one DHCP 
server, said subscriber device in communication 
with the switch node, the method including the 
steps of: 


Page 5, line 33, etseq. 


creating a list of trusted ones of the 
DHCP servers in said switch node; 


Page 6, line 3, etseq. 


transmitting by the subscriber device a 
DHCP request messaae for an IP address: 


Page 6, line 9. et seq. 


receiving a reply message by said switch 
node which carries an assigned subscriber IP 
address; 


Page 6, line 11, etseq. 


analysing the reply message by said 
switch node to be a DHCP message and having 
a source address from one of the trusted DHCP 


Page 6, line 15, etseq. 
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^pr\/^ re 

updating a filter dynamically in the switch 
node, the filter storing an identification of the 
subscriber device and the assigned subscriber 
IP address; 


Page 6, line 21, etseq. 


udiisiiiiuiing a rrame irom the subscriber 
device using a source IP address- 


Page 6, line 26, etseq. 


comparing in the filter said source IP 
address with the stored subscriber IP address- 
and, 


Page 6, line 27, et seq. 


discarding said frame when said source 
IP address differs from the stored subscriber IP 
address. 


Page 6, line 31, e/seq. 



Claim Element 

18. A switch node in an Internet Protocol 
(IP) network adapted to prevent illegitmate use 
of an IP address by a subscriber device, the 
switch node including: 


Specification Reference 

Page 5, line 5, et seq. 
Page 5, line 33, et seq. 


at least one port for communication with 
a subscriber device: 


Page 5, line 7, etseq. 


an uplink port for communication with 
DHCP servers in the network: and 


Page 5, line 5 


a filter device having a list of tmsted ones 
of the DHCP sen/ers, the filter device being 
associated with the ports; wherein the switch 
node Is operative to: 


Page 6, line 3, et seq. 


receive a subscriber IP address request 
message from a subscriber device, analyse it to 
be a DHCP request message and transmit it on 
the uplink port; 


Page 6, line 9, et seq. 


receive a reply message on the uplink 
port, analyse it to be a DHCP reply message 
having a source IP address from one of the 
trusted DHCP servers on the list; 


Page 6. lineli.efseg. 
Page 6, line 15, etseq. 


dynamically update the filter with an 
identification of the subscriber device and a 
corresponding assigned subscriber IP address 
contained in the DHCP reply message- 


Page 6, line 2^,et seq. 


receive a frame with a source IP address 
from a subscriber device; 


Page 6, line 26, etseq. 


compare in the filter said source IP 
address with the stored subscriber IP address 
for the subscriber device; and 

to discard said frame when said source 


Page 6, line 27, etseq. 
Page 6, line 31 , et seq. 
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address. 



J 

The specification references listed above are provided solely to comply with the 
USPTO's current regulations regarding appeal briefs. The use of such references 
should not be Interpreted to limit the scope of the claims to such references, nor to limit 
the scope of the claimed invention in any manner. 

Grounds of R ejection to he Reviewed on Appeal 

1. ) Claims 13-16 and 18-21 stand rejected, under 35 U.S.C. §103(a). as being 

unpatentable over Sitaraman, et al. (U.S. Patent No. 6,427,170) in view of 
Alkhatib. et al. (U.S. Patent Publication No. 2004/0044778) and Lim, et al. (U.S. 
Patent No. 5884024). 

2. ) Claims 17 and 22 stand rejected, under 35 U.S.C. § 103(a), as being 

unpatentable over Sitaraman in view of Alkhatib and Taylor, et al. (U.S. Patent 
Publication No. 2002/0065919). 

Arguments 

The Examiner rejected claims 13-16 and 18-21 as being unpatentable over 
Sitaraman. et al. (U.S. Patent No. 6.427.170) In view of Alkhatib. et al. (U.S. Patent 
Publication No. 2004/0044778) and Lim, et al. (U.S. Patent No. 5884024); and claims 
17 and 22 as being unpatentable over Sitaraman in view of Alkhatib and Taylor, et al. 
(U.S. Patent Publication No. 2002/0065919). The Applicants traverse the rejections. 

1.) Claims 13-16 and 18-21 are patentable over Sitaraman, et ai (U.S. Patent 
2S;.fn'i?I;VJ!^ Y'^"^ °' Alkhatib. et a/. (U.S. Patent Publication No. 
2004/0044778) and Lim, etal. (U.S. Patent No. 5884024). 

In a non-final office action issued on October 23, 2008, the Examiner rejected 
claim 13-16 and 18-21 as being unpatentable over Sitaraman in view of Alkhatib. In the 
final office action issued on March 31, 2009. the Examiner merely added the teachings 
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of Lim to his stated basis of rejection of claims 13-16 and 18-21. For completeness 
herein, the Applicants will repeat their previously-submitted arguments which 
specifically distinguished claim 13 over the teachings of SItaraman and Alkhatib. with 
added comments to point out where the Examiner has failed to address the points of 
those arguments and why the Examiner failed to establish how the teachings of Lim 
overcome the deficiencies identified by Applicants in the teachings of Sitaraman and 
Alkhatib. 

The Applicants' invention is directed to preventing the illegltmate use of an Internet 
Protocol (IP) address in an IP network, commonly referred to as "spoofing." The novel 
method includes providing a filter in a switch node through which a subscriber device 
accesses the IP network. The switch node maintains a list of trusted DHCP sen/ers which 
are conventionally used to assign an IP address to subscriber devices. When the switch 
node receives a DHCP request for an IP address from a subscriber device, the switch 
node examines the reply message that carrries the assigned subscriber IP address and 
analyzes it to confirm it has a source address from one of the trusted DHCP servers. The 
switch node then dynamically updates the filter and stores an indentifcation of the 
subscriber device and the assigned IP address. Subsequently, when the subscriber device 
transmits a frame using a source IP address, the switch node confirms In the filter that the 
source IP address of the frame matches the stored subscriber IP address and, if not, the 
switch node discards the frame. That combination of functions is not taught or 
suggested bv the teachings of Sitara man. Alkhatib and Lim. either individually or in 
combination . 

With respect to the claim limitation "creating a list of trusted ones of the DHCP 
servers in said switch node," the Examiner refers generally to Sitaraman as disclosing, in 
Figure 2. "multiple DHCP servers." The Examiner, however, does not point to anv teaching 
in Sitaraman. or Alkhatib. of creating a list o f trusted ones of the DHCP servers, or storing 
such a list in the switch n ode through which a subscriber device accesses the IP network 
Moreover, the Examiner has not p o inted to any teaching in Lim of that claim 
limitation. 

With respect to the claim limitation "analysing the reply message [by said switch 
node] to be a DHCP message and having a source address from one of the tmsted DHCP 
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servers." the Examiner states that Sitaraman teaches a client that may decide to "accept 
[an offered IP address] or wait for additional offers from other DHCP servers on the 
network." That claim limitation now recites that the function is performed in the switch node 
and not the subscriber device {i.e., the client). In either case, the Examiner doRs nnt pnint 
to any teaching in Sitaraman of analyzing a HH C P reolv messar^e to ensure that ite ,rn^ 
address is from a trusted one of the DHCP servpr s maintained in « list bv the switrh nnrio 
Similarly, if Sitaraman does not teach cre a tine a filter list of trusted DHCP servere in a 
switch node, nor analyzing a reolv messag fi to be a DHCP messaofi hawing « ^n.-^^ 
address from one of the trusted DHCP servers it c annot logically t^ach the claim limitotinn 
of "updating a filter dynamicailv in the sw i tch node, the filter storing an identification of thP 
subscriber device and the assigned subscrih e r IP addreess " which the Eyaminpr aac^rfc 
is taught at column 10, lines 27-31 . The Applicants have examined the referenced portion 
of Sitaraman and find no such teaching. Moreover, the Examiner has not pointed to 
any teach ing in Lim of that claim limitetion 

With respect to the claim limitation "comparing in the filter said source IP address 
with the stored subscriber IP address," the Examiner states that Sitaraman teaches 
"'dynamic' IP addresses are compared with static IP addresses," referring to column 4, 
lines 10-14. The claim limitation, however, read in the context of the whole claim, is 
comparing a source IP address of a frame from a subscriber device with a previously- 
stored IP address assigned to the subscriber device, in order to ensure the subscriber 
device is not "spoofing" an IP address not assigned to the device. Thus, the claim 
limitation is not comparin g a dynamic IP address to a static IP address as the Examiner 
reads the teachings of Sitaraman IWoreover. the Examiner has not pointed to anv 
teaching in Lim of that claim limitation. 

The Examiner does recognize that Sitaraman fails to teach discarding a frame from 
a subscriber device when its source IP address differs from the stored subscriber IP 
address. The mere fact that the Examiner recognizes this deficiency in the teaching of 
Sitaraman should, as a logical matter, counter against his assertion that Sitaraman 
teaches the claim limitation of "comparing in the filter said source IP address with the 
stored subscriber IP address." The logical purpose of such comparison is to detemiine 
whether or not such addresses are the same and. thus, if they are not, the frame should 
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be discarded - the very function which the Examiner recognizes SItaraman falls to teach. 
In either case, the Examiner looks to the teachings of Alkhatib to overcome the 
acknowledged deficiency. Alkhatib. howe ver, fails to teach discarding, bv a switch node, a 
frame transmitted by a subscriber device when the source IP address for the frame 
does not correspond to a prevlouslv-store d IP address assigned to the subscriber devinft 
The Examiner points to paragraph 149 of Alkhatib as teaching this single limitation of claim 
13. According to the teachings of Alkhatib. entltes 14, 16 and 18 are devices such as 
"mobile and non-mobile computing devices." which correspond to the "subscriber device" 
as used in claim 13. and those devices are connected to an IP network through a Network 
Address Translation (NAT) device 12. (see Figure 1). Alkhatib is directed to a system for 
accessing an entity inside a private network. According to the teachings of paragraph 149, 
"[i]f NAT 12 checks the source IP address in Incoming packets, rejecting those In which the 
source IP address is different than the destination IP address for which the connection was 
established In the first place." The purpose of that function in Alkhatib is to control access 
to the devices 14, 16 and 18 /n the private network behind the NAT 12, not to ensure that 
source IP address utilized by such devices matches an IP address previously-assigned to 
such devices. Therefore, th e Examiner's reliance on the teachings of Alkhatib is Inapposite 
and fails to cure the defi ciencies in the teachings of SItaraman . Moreover, the Examiner 
has not pointed to anv tea ching in Lim of that claim limitation. 

Accordingly, the Examiner has not established a prima facie case of obviosuness of 
claim 13 in view of SItaraman, Alkhatib and Lim. Whereas independent claim 18 recites 
limitations analogous to those of claim 1 3, it is also not obvious over SItaraman in view of 
Alkhatib. Furthemiore, whereas claims 14-17 and 19-22 are dependent from claims 13 
and 18, respectively, and include the limitations thereof, they are also not obvious in view 
of those references. 

2.) Claims 17 and 22 are patentable over SItaraman in view of Alkhatib and 
Taylor, etal. (U.S. Patent Publication No. 2002/006S919). 

In a non-final office action issued on October 23, 2008, the Examiner rejected 
claims 17 and 22 as being unpatentable over Sitaraman in view of Alkhatib and Taylor. 
In the final office action issued on March 31, 2009, the Examiner did not modify the 
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basis of rejection of claims 17 and 22. even though those claims are dependent from 
claims 13 and 18. respectively, which the Examiner rejected as unpatentable over 
Sitaraman in view of Alkhatib and Lim. In responding to the Final office action, the 
Applicants treated the Examiner's rejection of claims 17 and 22 as though they were 
rejected as being unpatentable over Sitaraman in view of Alkhatib. Lim and Taylor. As 
established supra, the Examiner has not established a prima facie case of obviousness 
of claims 13 and 18. Therefore, whereas claims 17 and 22 are dependent from those 
claims, and include the limitations thereof, they are not obvious over Sitaraman in view 
of Alkhatib, Lim and Taylor. 
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CONCLUSION 

Claims 13-22 are patentable over the teachings of SItaraman in view of Alkhatib. 
Lim and Taylor and. therefore, the Applicants request that the Examiner's rejection 
thereof be reversed and the application be remanded for further prosecution. 

Respectfully submitted, 



Roger S. Burleigh 
Registration No. 40.542 
Ericsson Patent Counsel 

Date: September 30, 2009 
Ericsson Inc. 

6300 Legacy Drive. M/S EVR1 C-11 
Piano, Texas 75024 

(972) 583-5799 
roger.burlelgh@ericsson.com 
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